Link Digest
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: link-digest Version: 1.1.0 The skill is designed to fetch external URLs, write to the local filesystem (`KB_DIR`), and execute shell commands (`git add`, `git commit`). While the `SKILL.md` includes robust security rules explicitly designed to prevent common attacks like SSRF, RCE from fetched content, and prompt injection from external sources, the presence of these high-risk capabilities (network access, file system write, shell execution) makes it suspicious. The instructions themselves are not malicious, but the inherent risks of these operations, even with strong stated mitigations, warrant a 'suspicious' classification.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may create visible Discord threads and posts in the configured channel.
The workflow uses delegated Discord access to read from the configured channel and also instructs creating threads and sending messages.
message(action=read, channel=<LINK_DIGEST_CHANNEL_ID>, limit=10)
Use a channel ID where this behavior is desired and ensure the agent's Discord permissions are limited to appropriate channels.
A misconfigured KB_DIR could cause unintended files to be staged or committed.
The skill instructs the agent to run a git command that mutates the local repository, though it also says to commit only files within KB_DIR.
git add <KB_DIR> && git commit -m "kb: add note from link-digest"
Set KB_DIR to a narrow knowledge-base folder and review git status before pushing commits.
Summaries and source URLs can persist in the local knowledge base and be reused later.
The workflow creates persistent local knowledge-base entries from analyzed links, which may later influence future work.
Append a distilled note to the appropriate KB file.
Review generated KB entries for accuracy and avoid processing links whose source URL or summary should not be retained.